Why character array is better than String for storing password in Java was recent question asked to one of my friend in a java
interview. he was interviewing for a Technical
lead position and has over 6 years of experience.Both
Character array and String can be used to store text data but choosing one over other is difficult question if you haven't faced the situation already. But as my friend said any question related to String must have a clue on special property of Strings like immutability and he used that to convince interviewer. here we will
explore some reasons on why should you used char[] for storing password than String.
This article is in continuation of my earlier interview question post on String e.g. Why String is immutable in Java or How Substring can cause memory leak in Java, if you haven't read those you may find them interesting.Here are few reasons which makes sense to believe that character array is better choice for storing password in Java than String:
This article is in continuation of my earlier interview question post on String e.g. Why String is immutable in Java or How Substring can cause memory leak in Java, if you haven't read those you may find them interesting.Here are few reasons which makes sense to believe that character array is better choice for storing password in Java than String:
1) Since
Strings are immutable in Java if you store password as plain text it will be available in memory until Garbage
collector clears it and since String are used in String
pool for reusability there is pretty high chance that it will be remain in memory for long duration, which pose a
security threat. Since any one who has access to
memory dump can find the password in clear text and that's another reason you should always used an encrypted password than plain text. Since Strings are immutable there is no way contents of Strings can be changed because
any change will produce new String, while if you char[] you can still set all his element as blank or zero. So
Storing password in character array clearly mitigates security risk of stealing password.
2)
Java itself recommends using getPassword() method of JPasswordField which returns a char[] and deprecated getText() method which returns password in clear text stating security reason. Its good to follow advice from Java team and adhering to standard rather than going against it.
3) With String there is always a risk of printing plain text in
log file or console but if use
Array you won't print contents of array instead its memory location get printed. though not a real reason but still make sense.
String strPassword=
"Unknown"
;
char [] charPassword= newchar []{ 'U', 'n', 'k', 'w', 'o', 'n' } ;
System. out. println ( "String password: " + strPassword ) ;
System. out. println ( "Character password: " + charPassword ) ;
String password: Unknown
Character password: [C@110b053
char [] charPassword= newchar []{ 'U', 'n', 'k', 'w', 'o', 'n' } ;
System. out. println ( "String password: " + strPassword ) ;
System. out. println ( "Character password: " + charPassword ) ;
String password: Unknown
Character password: [C@110b053
That's all on
why character array is better choice than String for storing passwords in Java. Though using char[] is not just enough you need to erase content to be more secure. I also suggest working with hash'd or
encrypted password instead of plain text and clearing it from memory as soon as authentication is completed.
Other
Java Interview questions you may like
Read more: http://javarevisited.blogspot.com/2012/03/why-character-array-is-better-than.html#ixzz2khPw9wi2